entrouvert
/
lasso
16
0
Fork 0
Code Issues Pull Requests Releases Activity
4,430 Commits 7 Branches 40 Tags 14 MiB
Commit Graph

4430 Commits

Author SHA1 Message Date
Benjamin Dauvergne 9f57d30ebc Tools: add script to generate a listing of Lasso ABI 
* tools/api.py:
   use parser from the binding generator to output a list of symbols
 * bindings/bindings.py;
   add private flags to not clobber 'private' fields of structures or
   methods not exported in bindings like _get_type.
 2010-01-14 16:18:42 +00:00
Benjamin Dauvergne 0d1b1a624a ID-WSF: separate ID-WSF strings into their own header 2010-01-14 16:18:39 +00:00
Benjamin Dauvergne dac5738c6b start NEWS file for 2.2.90 2010-01-14 16:18:38 +00:00
Benjamin Dauvergne f3d87217f2 Tests integration: remove save_html hooks, after fed termination logout button should still be there 2010-01-14 16:18:36 +00:00
Benjamin Dauvergne 020a7583ab Bindings python: use is_cstring for matching GList element type 2010-01-14 16:18:34 +00:00
Benjamin Dauvergne ea39436622 SAML 2.0 Logout: undo some change to when the assertion is removed 
* lasso/saml-2.0/logout.c:
   - do not remove the assertion in init_request, as before only if all
     fails (event REDIRECT is unsupported).
   - in process_response_msg remove the assertion if we are the IdP or
     if there is no error.
   - in validate_request, remove the assertion if there is no error.

   I think that there will be more updates to this in the future.
 2010-01-14 16:18:33 +00:00
Benjamin Dauvergne 98a48032cb Bindings: make is_cstring usable with tuple and with direct type 2010-01-14 16:18:31 +00:00
Benjamin Dauvergne f87a55e9ef Core: remove warning emiting macros from lasso_session_remove_assertion 
* lasso/id-ff/session.c:
   we already return error code, no need to log more warnings.
 2010-01-14 16:18:29 +00:00
Benjamin Dauvergne 9d544c49d0 SAML 2.0: report missing request when creating artifact resolve response, fix typo in lasso_saml20_profile_build_post_response_msg 2010-01-14 16:18:28 +00:00
Benjamin Dauvergne 869768bc35 SAML 2.0: Fix typo in lasso_saml20_login_build_authn_response_msg 2010-01-14 16:18:26 +00:00
Benjamin Dauvergne b30498aec6 ID-FF&SAML2: if use is not defined on a key descriptor use the key for any use 
* lasso/id-ff/provider.c lasso/saml-2.0/provider.c: if the "use"
   attribute is not set on a KeyDescriptor, use the key for signing and
   encryption.
 2010-01-14 16:18:24 +00:00
Benjamin Dauvergne c14fdb11ec Tests SAML2: use & test encryption 2010-01-12 15:40:29 +00:00
Benjamin Dauvergne 9554334c91 SAML 2.0: add saml2_helper.h to include files to install 2010-01-12 15:40:28 +00:00
Benjamin Dauvergne 9efcaac3f3 Tests: fix inclusion of id-wsf 2.0 tests 2010-01-12 15:40:26 +00:00
Benjamin Dauvergne cc502b2b98 Core: add new SAML 2.0 public header to top level header lasso.h 2010-01-12 15:40:24 +00:00
Benjamin Dauvergne df258845c7 ID-WSF 2.0: remote saml2_login_private.h from Makefile.am 2010-01-12 15:40:23 +00:00
Benjamin Dauvergne b77c9cf2e8 Bindings: add support for time_t to bindings, add support for 'string' type for list in java binding 2010-01-12 15:40:21 +00:00
Benjamin Dauvergne 7142d50d16 in saml2_helper.{c,h}, remote const modifier from time_t type 2010-01-12 15:40:20 +00:00
Benjamin Dauvergne 436c8cb232 in saml-2.0/name_id_management.c: handle NewEncryptedID, only encrypt if needed 2010-01-12 15:40:18 +00:00
Benjamin Dauvergne e956ca8818 in saml-2.0/logout.c: remove commented code, only encrypt if needed, intialize local variables 2010-01-12 15:40:16 +00:00
Benjamin Dauvergne 59f8ae0944 in lasso_saml20_login_init_idp_initiated_auhtn_request, do not use init_authn_request, manually create the request. 2010-01-12 15:40:15 +00:00
Benjamin Dauvergne 76ae81022c in lasso_saml20_login_init_authn_request, use saml-2.0/profile.c functions to reduce code size 2010-01-12 15:40:14 +00:00
Benjamin Dauvergne 63206b32f2 in saml-2.0/profile.c, in lasso_saml20_build_response_msg, when no url is given, only stop for bindings needing one 2010-01-12 15:40:12 +00:00
Benjamin Dauvergne 39eba085a5 in saml-2.0/profile.c, in lasso_saml20_profile_init_response make direct access 2010-01-12 15:40:11 +00:00
Benjamin Dauvergne 926bfeee2c in saml-2.0/profile.c, in lasso_saml20_init_request better check for supported bindings, do not check for identity or session, report SESSION_NOT_FOUND only if first_in_session is used, do not stop on missing name_id. 2010-01-12 15:40:09 +00:00
Benjamin Dauvergne 845e302415 in saml2_helper.c, remove dead code 2010-01-12 15:40:08 +00:00
Benjamin Dauvergne e06e9db029 SAML 2.0: in lasso_saml20_provider_accept_http_method, add HTTP-Artifact-POST case, better check for bad inputs, and handle special SingleSignOn case 2010-01-12 15:40:07 +00:00
Benjamin Dauvergne 003916b452 Core Profile: remove need for identity in lasso_profile_get_nameIdentifier 2010-01-12 15:40:06 +00:00
Benjamin Dauvergne 9caacc3bb6 Core Server: make default to load signing private key also as encryption private key 2010-01-12 15:40:04 +00:00
Benjamin Dauvergne 5ac1c303cc Commit to delete 2010-01-12 15:40:03 +00:00
Benjamin Dauvergne 413932306d Core: rewrite lasso_assertion_encrypt using lasso_xmlsect_load_key and add recipient argument 2010-01-12 15:40:01 +00:00
Benjamin Dauvergne a237cd1057 Core: add simple function to load key from any format 2010-01-12 15:39:59 +00:00
Benjamin Dauvergne d42c16e239 Core Node: add args to lasso_node_encrypt to set recipient of an encrypted element 2010-01-12 15:39:57 +00:00
Benjamin Dauvergne ddbe21ae5b Binding python: provide old binding name for set_encryptionMode 2010-01-12 15:39:55 +00:00
Benjamin Dauvergne 2ff13e5414 SAML 2.0: overhaul for ubuquitous binding support, still need work for HTTP-Artefact 2010-01-12 15:39:48 +00:00
Benjamin Dauvergne 0988cc2ec8 Core: in profile.c, profile.h, profileprivate.h, add a new attribute to express signature needs 2010-01-12 15:39:45 +00:00
Benjamin Dauvergne 601617843b Core: in identity.c, do not emit trace when lasso_identity_get_federation fails 2010-01-12 15:39:43 +00:00
Benjamin Dauvergne ac3a687518 XML Core: in xml.c, private.h, add a lasso_node_remove_signature function 2010-01-12 15:39:42 +00:00
Benjamin Dauvergne 01dad5fd05 XML: fill node_data->{certificate,private_key}_file_offset for nodes with signatures 2010-01-12 15:39:40 +00:00
Benjamin Dauvergne d461fe3957 Core: in xml/private.h, add new field to LassoNodeClassData for private_key and certificate handling 2010-01-12 15:39:38 +00:00
Benjamin Dauvergne cf45d9fc99 Core: in provider.h, add LASSO_PROVIDER_ROLE_BOTH 2010-01-12 15:39:37 +00:00
Benjamin Dauvergne 1eb34af43f Core: in profile.c, make lasso_profile_get_nameIdentifier work for transient federations 
* lasso/id-ff/profile.c:
   if no LassoIdentity is accessible try to get a name identifier
   through the assertion in the LassoSession object. This allows the
   logout profile to work without an identity object (which is normal
   since logout does not modify the federation status).
 2010-01-12 15:39:35 +00:00
Benjamin Dauvergne 85161f15a7 Core: in provider.h, add new SAML 2.0 HTTP-Method, PAOS 2010-01-12 15:39:34 +00:00
Benjamin Dauvergne 4fe35b69cc SAML 2.0: add new function to factorize adding signature to a message 2010-01-12 15:39:33 +00:00
Benjamin Dauvergne 56bd9e2405 Fix mitm attack using the AssertionConsumerURL property on requests 
* lasso/saml-2.0/login.c: check that the URL is know before using it
 * lasso/saml-2.0/provider.c lasso/saml-2.0/providerprivate.h:
   add a function to check that an URL corresponds to a know
   AssertionConsumer of the given provider.
 2010-01-12 15:39:31 +00:00
Benjamin Dauvergne 21cc1bf7ee ID-WSF 2.0: fix in documentation 2010-01-12 15:39:28 +00:00
Benjamin Dauvergne fcd8739f49 Bindings: simplify GList handling 2010-01-04 09:16:00 +00:00
Benjamin Dauvergne 914a176d99 XML: add element type annotation to all GList fields 2010-01-04 09:15:55 +00:00
Benjamin Dauvergne 65642d732c Bindings: in bindings/python/Makefile.am, precise generated files dependencies 2010-01-04 09:15:48 +00:00
Benjamin Dauvergne 42c81da4f4 XML: move SOAP API to its own sub directory 2010-01-04 09:15:42 +00:00